OS Security

Thekoftte

Üye
15 Kas 2020
103
0
Definition — What does Operating System Security (OS Security) mean?

1*wkWRTkLYMqKmdySQQR_A_Q.jpeg


Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability.

OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised.

OS security may be approached in many ways, including adherence to the following:

Performing regular OS patch updates
Installing updated antivirus engines and software
Scrutinizing all incoming and outgoing network traffic through a firewall
Creating secure accounts with required privileges only (i.e., user management)

Defence in depth:
1*bVJQJTKLKz83IFeTzJFYYA.jpeg


Windows Server Hardening
1*JsYo8O903SFsk7VDOxAw4g.jpeg


Server Hardening Standard
Windows Server 2016 Hardening Checklist
Windows Server Hardening Checklist
The Quick Lockdown
Hardening IIS
DNS SECURITYBEST PRACTICES
SQL Server Audit Checklist
Alpha High Level Description

Linux Server Hardening:

1*SxPVmWJ_LpaYVZnruHDCaA.png


Red Hat Enterprise Linux 6 Security Guide
Red Hat Enterprise Linux 7 Hardening Checklist
How To Configure The AIDE
How to manage ACLs on Linux
Basic Guide To Encrypting Linux Partitions With LUKS
Logging iptables messages with rsyslog
Red Hat Enterprise Linux 7 SELinux User’s and Administrator’s Guide
The Linux-PAM Guides
Intrusion Detection & SNORT
How to Install Linux Malware Detect (LMD) and ClamAV on CentOS 7
Three Tools to Scan a Linux Server for Viruses, Malware and Rootkits
10 lsof Command Examples in Linux
How To Encrypt OpenLDAP Connections Using STARTTLS
BIND 9 Security best practices
Hardening SSH
Protecting an unpatched Samba server
Red Hat Enterprise Linux 7 Firewalld HowTo
Full-mesh IPsec network
Postfix Hardening Guide for Security and Privacy

Scanning:

Windows

SolarWinds Network Security Tools with Engineer’s Toolset (FREE TRIAL) — The SolarWinds Engineer’s Toolset includes a Security Event Manager, a Patch Manager, and a User Device Tracker to help you to tighten system security.
Nessus is constantly updated, with more than 70,000 plugins. Key features include remote and local (authenticated) security checks, a client/server architecture with a web-based interface, and an embedded scripting language for writing your own plugins or understanding the existing ones. For downloads and more information, visit the Nessus homepage.

Kaspersky Lab antivirus & internet security software offers premium protection against viruses, malware, spam & other threats for your home or business.

Vulnerability Scan in Kaspersky Total Security
Linux
The OpenSCAP ecosystem provides multiple tools to assist administrators and auditors with assessment, measurement, and enforcement of security baselines.
Using oscap

OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test.

OpenVAS — Vulnerability Assessment install on Kali Linux

Automation

Puppet
One of the best ways to ensure good, solid security on systems across your organization is to establish baselines defining a minimum set of standards for access, firewalls and services. Puppet can help you define, build, and maintain those configuration management baselines in a straightforward way that’s just not possible when working at scale.


(QUOTE)

Thekoftte
 
Son düzenleme:
Üst

Turkhackteam.org internet sitesi 5651 sayılı kanun’un 2. maddesinin 1. fıkrasının m) bendi ile aynı kanunun 5. maddesi kapsamında "Yer Sağlayıcı" konumundadır. İçerikler ön onay olmaksızın tamamen kullanıcılar tarafından oluşturulmaktadır. Turkhackteam.org; Yer sağlayıcı olarak, kullanıcılar tarafından oluşturulan içeriği ya da hukuka aykırı paylaşımı kontrol etmekle ya da araştırmakla yükümlü değildir. Türkhackteam saldırı timleri Türk sitelerine hiçbir zararlı faaliyette bulunmaz. Türkhackteam üyelerinin yaptığı bireysel hack faaliyetlerinden Türkhackteam sorumlu değildir. Sitelerinize Türkhackteam ismi kullanılarak hack faaliyetinde bulunulursa, site-sunucu erişim loglarından bu faaliyeti gerçekleştiren ip adresini tespit edip diğer kanıtlarla birlikte savcılığa suç duyurusunda bulununuz.